Softros Network Time System Server 2.3.4 – Denial of Service
>> ARCHIVE: 2018-03
Softros Network Time System Server 2.3.4 – Denial of Service
CylanceSVC suffers from an anti-tamper bypass vulnerability.
Segger embOS/IP FTP Server version 3.22 suffers from a denial of service vulnerability.
HPE System Management versions 7.6.0.11 and below suffer from a cross site scripting vulnerability.
D-Link DIR-600M Wireless suffers from a cross site scripting vulnerability.
uWSGI versions prior to 2.0.17 suffer from a directory traversal vulnerability.
TestLink Open Source Test Management versions prior to 1.9.16 suffer from a remote code execution vulnerability.
IrfanView email plugin version 4.50 SEH unicode buffer overflow exploit.
IrfanView email plugin version 4.44 SEH buffer overflow exploit.
Suricata versions prior to 4.0.4 suffer from a detection bypass vulnerability. Proof of concept exploit included.